summary refs log tree commit diff
path: root/gnu
diff options
context:
space:
mode:
authorLéo Le Bouter <lle-bout@zaclys.net>2021-03-10 10:55:04 +0100
committerLéo Le Bouter <lle-bout@zaclys.net>2021-03-10 10:59:12 +0100
commitf7fdafeff52cb900d76a1de855a5a238aacedd7d (patch)
tree553afc10126b2c8943b3a69d879f9843a5086974 /gnu
parentb8e71b390d797621f4c6e9b179c38d89bbcfdb1b (diff)
downloadguix-f7fdafeff52cb900d76a1de855a5a238aacedd7d.tar.gz
gnu: zziplib: Update to 0.13.72 [security fixes].
Non-exhaustively, fixes CVE-2018-16548 and CVE-2018-17828.

* gnu/packages/compression.scm (zziplib/fixed): New variable.
(zziplib)[replacement]: Graft.
Diffstat (limited to 'gnu')
-rw-r--r--gnu/packages/compression.scm24
1 files changed, 23 insertions, 1 deletions
diff --git a/gnu/packages/compression.scm b/gnu/packages/compression.scm
index fbe3b06347..571088dcbc 100644
--- a/gnu/packages/compression.scm
+++ b/gnu/packages/compression.scm
@@ -87,7 +87,7 @@
   #:use-module (gnu packages version-control)
   #:use-module (gnu packages xml)
   #:use-module (ice-9 match)
-  #:use-module ((srfi srfi-1) #:select (last)))
+  #:use-module (srfi srfi-1))
 
 (define-public zlib
   (package
@@ -1728,6 +1728,7 @@ timestamps in the file header with a fixed time (1 January 2008).
               (sha256
                (base32
                 "0fbk9k7ryas2wh2ykwkvm1pbi40i88rfvc3dydh9xyd7w2jcki92"))))
+    (replacement zziplib/fixed)
     (build-system gnu-build-system)
     (arguments
      `(#:phases (modify-phases %standard-phases
@@ -1756,6 +1757,27 @@ timestamps in the file header with a fixed time (1 January 2008).
     ;; files carry the Zlib license; see "docs/copying.html" for details.
     (license (list license:lgpl2.0+ license:mpl1.1))))
 
+(define-public zziplib/fixed
+  (package
+    (inherit zziplib)
+    (name "zziplib")
+    (version "0.13.72")
+    (home-page "https://github.com/gdraheim/zziplib")
+    (source (origin
+              (method git-fetch)
+              (uri (git-reference (url home-page)
+                                  (commit (string-append "v" version))))
+              (file-name (git-file-name name version))
+              (sha256
+               (base32
+                "0i6bpa2b13z19alm6ig80364dnin1w28cvif18k6wkkb0w3dzp8y"))))
+    (arguments `())
+    (native-inputs
+     `(("python" ,python)
+       ,@(alist-delete "python"
+                       (package-native-inputs zziplib))))
+    (build-system cmake-build-system)))
+
 (define-public libzip
   (package
     (name "libzip")